nav[aria-label="Primary Navigation"] { padding: 0; & ul { list-style: none; width: 100%; display: flex; flex-direction: row; justify-content: start; align-items: start; gap: 30px; padding: 0; & li { margin: 0; } & ul li { list-style: none; } } }

Community
- Command Central
- MVP Program
- Monthly Mission
- Blogs
- Groups
- Events
- Media Vault
Products
- Observability
- Network Management
- Application Management
- IT Security
- IT Service Management
- System Management
- Database Management
Content Exchange
- SolarWinds Platform
- Server & Application Monitor
- Database Performance Analyzer
- Server Configuration Monitor
- Network Performance Monitor
- Network Configuration Manager
- SQL Sentry
- Web Help Desk
Free Tools & Trials
Store

Emailing syslog alerts

stevenjwilliams83

Can syslog alerts be emailed? Can you customize what syslog alerts should be sent?

Find more posts tagged with

Accepted answers

byrona

Yes, Syslog alerts are configured similar to other alerts in Orion and an email action is one of the options. Within that email alert you have the option to send the syslog message that tripped the alert as a variable.

Which syslogs trip the alert is completely customizable using regular expression.

Hope this helps.

All comments

byrona

Which syslogs trip the alert is completely customizable using regular expression.

Hope this helps.

byrona

In case you are curious how to configure these syslog alerts, go to the console of your primary Orion server and launch the Syslog Viewer application. Once in there click on View --> Alerts/Filter Rules.

Once in there you can create syslog alert rules. Keep in mind that these rules are processed in the order in which they appear in the list and as an alert you have the option to stop them from processing against further rules as well as keeping them from getting logged to the DB and kept. Managing these options becomes important for your rules to function properly.

stevenjwilliams83

I do not see the View --> alerts/filter rule options from the syslog menue in orion.

stevenjwilliams83

Nevermind. You meant the actually physical server not the orion we web console. Thanks.

stevenjwilliams83

Whoa, can you point me to some documents on how to configure this?

byrona

I took a look and it looks like the NPM Admin Guide doesn't really cover configuration for this. However, it's pretty straight forward. Just keep in mind that it processes all logs against the rules in the order that they appear. If there are logs that you don't want processed against the rules you need your first rule configured with an action to stop processing and discard for the logs that you don't want processed.

If you have specific questions on how to configure this please let us know and I am sure the community will be able to help you.

stevenjwilliams83

I have tried to configure an alert to email me when an interface changes its state to down but I am not having any luck. I basically want to be email anytime an interface goes down or in err-disabled status for port security reasons. Suggestions anyone?

byrona

Can you see those syslog messages in your system? If so can you post a screenshot of the syslogs that you want alerts for along with the alert that you have configured.